CVE-2024-36353

EPSS 0.04%
Veröffentlicht 02.03.2025 18:15:34
Zuletzt bearbeitet 25.09.2025 20:15:33
Quelle psirt@amd.com
CVE-Watchlists
Login
Unerledigt
Login

Insufficient clearing of GPU global memory could allow a malicious process running on the same GPU to read left over memory values potentially leading to loss of confidentiality.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 4

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerAMD

≫

Produkt AMD Ryzen™ 4000 Series Mobile Processors with Radeon™ Graphics

Default Statusaffected

Version Radeon Software For Linux 25.10.1

Status unaffected

HerstellerAMD

≫

Produkt AMD Ryzen™ 6000 Series Processors with Radeon™ Graphics

Default Statusaffected

Version Radeon Software For Linux 25.10.1

Status unaffected

HerstellerAMD

≫

Produkt AMD Athlon™ 3000 Series Mobile Processors with Radeon™ Graphics

Default Statusaffected

Version Radeon Software For Linux 25.10.1

Status unaffected

HerstellerAMD

≫

Produkt AMD Ryzen™ 7040 Series Mobile Processors with Radeon™ Graphics

Default Statusaffected

Version Radeon Software For Linux 25.10.1

Status unaffected

HerstellerAMD

≫

Produkt AMD Ryzen™ 7020 Series Processors with Radeon™ Graphics

Default Statusaffected

Version Radeon Software For Linux 25.10.1

Status unaffected

HerstellerAMD

≫

Produkt AMD Ryzen™ 7045 Series Mobile Processors with Radeon™ Graphics

Default Statusaffected

Version Radeon Software For Linux 25.10.1

Status unaffected

HerstellerAMD

≫

Produkt AMD Ryzen™ 7000 Series Desktop Processor

Default Statusaffected

Version Radeon Software For Linux 25.10.1

Status unaffected

HerstellerAMD

≫

Produkt AMD Ryzen™ 5000 Series Desktop Processors with Radeon™ Graphics

Default Statusaffected

Version Radeon Software For Linux 25.10.1

Status unaffected

HerstellerAMD

≫

Produkt AMD Ryzen™ 7030 Series Mobile Processors with Radeon™ Graphics

Default Statusaffected

Version Radeon Software For Linux 25.10.1

Status unaffected

HerstellerAMD

≫

Produkt AMD Ryzen™ 9000HX Series Processors

Default Statusaffected

Version Radeon Software For Linux 25.10.1

Status unaffected

HerstellerAMD

≫

Produkt AMD Ryzen™ AI Max 300 Series Processors

Default Statusaffected

Version Radeon Software For Linux 25.10.1

Status unaffected

HerstellerAMD

≫

Produkt AMD Ryzen™ Z2 Series Processors Extreme

Default Statusaffected

Version Radeon Software For Linux 25.10.1

Status unaffected

HerstellerAMD

≫

Produkt AMD Ryzen™ 7035 Series Processors with Radeon™ Graphics

Default Statusaffected

Version Radeon Software For Linux 25.10.1

Status unaffected

HerstellerAMD

≫

Produkt AMD Ryzen™ 4000 Series Desktop Processors

Default Statusaffected

Version Radeon Software For Linux 25.10.1

Status unaffected

HerstellerAMD

≫

Produkt AMD Ryzen™ 5000 Series Mobile Processors with Radeon™ Graphics

Default Statusaffected

Version Radeon Software For Linux 25.10.1

Status unaffected

HerstellerAMD

≫

Produkt AMD Ryzen™ 8000 Series Desktop Processors

Default Statusaffected

Version Radeon Software For Linux 25.10.1

Status unaffected

HerstellerAMD

≫

Produkt AMD Ryzen™ 9000 Series Desktop Processors

Default Statusaffected

Version Radeon Software For Linux 25.10.1

Status unaffected

HerstellerAMD

≫

Produkt Ryzen™ Embedded R1000

Default Statusaffected

Version Kernel 6.12.25 LTS

Status unaffected

HerstellerAMD

≫

Produkt Ryzen™ Embedded R2000

Default Statusaffected

Version Kernel 6.12.25 LTS

Status unaffected

HerstellerAMD

≫

Produkt AMD Ryzen™ Embedded V1000 Series Processors (formerly codenamed "Raven Ridge")

Default Statusaffected

Version Kernel 6.12.25 LTS

Status unaffected

HerstellerAMD

≫

Produkt Ryzen™ Embedded V2000

Default Statusaffected

Version Kernel 6.12.25 LTS

Status unaffected

HerstellerAMD

≫

Produkt Ryzen™ Embedded V3000

Default Statusaffected

Version Kernel 6.12.25 LTS

Status unaffected

HerstellerAMD

≫

Produkt AMD Ryzen Embedded V2000A Series Processors

Default Statusaffected

Version Kernel 6.12.25 LTS

Status unaffected

HerstellerAMD

≫

Produkt AMD Radeon™ RX 5000/PRO W5000 Series Graphics Products

Default Statusaffected

Version Radeon Software For Linux 25.10.1

Status unaffected

HerstellerAMD

≫

Produkt AMD Radeon™ RX6000/PRO W6000 Series Graphics Products

Default Statusaffected

Version Radeon Software For Linux 25.10.1

Status unaffected

HerstellerAMD

≫

Produkt AMD Radeon™ RX 7000/PRO W7000 Series Graphics Products

Default Statusaffected

Version Radeon Software For Linux 25.10.1

Status unaffected

HerstellerAMD

≫

Produkt AMD Radeon™ PRO V520

Default Statusaffected

Version Contact your AMD Customer Engineering representative

Status unaffected

HerstellerAMD

≫

Produkt AMD Radeon™ PRO V620

Default Statusaffected

Version Contact your AMD Customer Engineering representative

Status unaffected

HerstellerAMD

≫

Produkt AMD Radeon™ PRO V710

Default Statusaffected

Version Contact your AMD Customer Engineering representative

Status unaffected

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.04%	0.105

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
psirt@amd.com	6.5	2	4	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N

CWE-459 Incomplete Cleanup

The product does not properly "clean up" and remove temporary or supporting resources after they have been used.

https://www.amd.com/en/resources/product-security/bulletin/AMD-SB-6019.html

https://nvd.nist.gov/vuln/detail/CVE-2024-36353

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2024-36353

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2024-36353

EUVD